Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft
File:                     cM9awmFE6NdDsVID4mwiBG-iQHo.mft (raw, json)
Hash identifier:          ctxWpDADvGVxir+KIWD+b4RCrM5JDFKhUbBx1TUqsYA=
Subject key identifier:   28:72:83:F0:ED:2D:D2:77:12:65:D1:3F:10:C5:21:4E:A2:6E:DA:13
Authority key identifier: 70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A
Certificate issuer:       /CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A
Certificate serial:       0175
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft
Manifest number:          0170
Signing time:             Sat 29 Mar 2025 03:21:55 +0000
Manifest this update:     Sat 29 Mar 2025 03:21:54 +0000
Manifest next update:     Sat 05 Apr 2025 03:21:54 +0000
Files and hashes:         1: cM9awmFE6NdDsVID4mwiBG-iQHo.crl (hash: 8MAqRF7lN5ivPnFwbMxNXHPZhBMUSAZVSoJnpB+eXsg=)
                          2: ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa (hash: ZkY0KzzTYIOlfe+QFFr6ughVl7NAzRhvIrPiqzSn17g=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 373 (0x175)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DB128
        Validity
            Not Before: Mar 29 03:21:54 2025 GMT
            Not After : Apr  5 03:21:54 2025 GMT
        Subject: CN=67e76753-aa07
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:50:99:3b:30:5b:0b:03:8f:fd:e5:57:25:aa:
                    df:68:8d:4e:98:03:eb:47:fc:d0:94:2a:c7:a8:cb:
                    6b:d5:c1:4c:62:c1:23:74:d5:05:91:c1:4b:f7:5d:
                    30:7c:45:5e:63:88:f5:ec:3c:03:cc:a3:8a:a6:11:
                    57:ef:5d:84:cc:b8:89:b3:00:9a:b7:c0:51:38:47:
                    7d:4a:b0:75:db:97:c8:b3:4c:a8:98:0c:51:d0:80:
                    ec:4c:f2:71:15:6e:0d:de:53:88:72:bd:1b:c6:f6:
                    e0:fc:60:56:59:23:f1:9a:b9:9f:00:4d:4e:60:43:
                    73:7e:8a:d6:da:b7:40:31:6f:a9:14:2b:0a:ba:7f:
                    bc:0b:97:61:7b:ee:99:4b:c1:6e:ce:f1:34:ee:db:
                    e4:89:c2:62:11:81:98:91:6e:e3:01:37:0a:db:5d:
                    7e:92:5a:09:26:90:71:9f:bd:c8:b1:36:b9:69:9e:
                    be:bb:54:40:e7:30:e7:89:fe:a6:d7:5b:fe:49:b1:
                    71:c8:03:cb:71:4e:b6:f9:47:a0:b5:c6:70:48:45:
                    e6:0e:0d:a4:12:ec:80:e0:94:db:2a:8e:74:df:31:
                    ac:40:e5:d3:a4:9a:ff:de:0c:8a:8f:c1:7e:b0:ee:
                    5d:e5:96:09:71:98:c1:52:7a:27:40:ac:6d:cc:dc:
                    6a:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:72:83:F0:ED:2D:D2:77:12:65:D1:3F:10:C5:21:4E:A2:6E:DA:13
            X509v3 Authority Key Identifier:
                keyid:70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:1b:94:06:5f:91:0c:a3:7b:48:da:9a:36:69:8e:91:33:cc:
         a6:d4:e5:5c:1d:ef:e9:25:9d:8c:99:1b:c9:d2:3d:d4:d3:77:
         2a:2e:eb:b4:17:d5:63:34:0d:44:cd:ce:c9:a4:47:10:6b:24:
         d4:f7:4e:be:7e:77:cc:1d:8d:dd:8f:e6:59:26:81:70:14:18:
         a3:b9:d3:9a:16:ea:f2:88:6d:29:77:7b:65:4b:94:9c:3d:0f:
         96:0f:64:38:33:25:f1:79:68:25:ed:8c:c2:42:96:fa:4e:4c:
         df:15:d6:5d:36:f2:12:52:ee:e3:45:a1:5e:40:c1:35:90:f1:
         40:b0:39:73:fc:f3:e1:7b:5a:c7:c9:b8:b2:36:2a:91:56:e4:
         f6:c3:eb:45:6a:5d:1c:f9:a5:54:c2:af:aa:0e:68:58:14:d7:
         4f:41:7d:a9:67:13:44:51:db:8b:c7:b4:86:fd:50:7e:24:9a:
         e7:c1:67:21:b6:b8:6f:2b:15:ef:96:da:67:6b:43:86:d9:99:
         f4:02:9e:99:48:d2:a7:d4:eb:2e:bd:96:99:83:68:e1:be:cd:
         02:44:d5:ed:07:a4:55:5d:1c:79:3c:f1:0e:64:ba:52:22:26:
         16:be:54:3f:19:82:f5:49:2c:ea:fe:77:e3:56:7f:e3:ba:9d:
         f0:c3:df:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----